Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - chemlud

Pages1 2 3 ... 170
#1
Intrusion Detection and Prevention / Re: Alot of SSH Traffic
December 02, 2025, 08:49:35 PM
Skip ssh rules in your config for Suricata. Done.
#2
Intrusion Detection and Prevention / Re: Alot of SSH Traffic
December 02, 2025, 08:21:17 PM
Are you exposing ports on WAN?

If not: why run Suricata on that interface in the first place? To watch and see that the internet is a bad, bad place? :-D

Or at least disabel SSH rules, if no ssh port open...
#3
German - Deutsch / Re: Log Files der Firewall fehlen
November 30, 2025, 12:12:20 PM
System -> Configuration -> History vielleicht...
#4
German - Deutsch / Re: Log Files der Firewall fehlen
November 30, 2025, 09:14:18 AM
Hi, hier 25.7.8 und alle logs normal mit Firefox (latest)...

Anderer Browser (Palemoon) kann seit Jahren keine Logs der OPNsense darstellen. Browser gewechselt?
#5
General Discussion / Re: OPNsense DNS over TLS forward TCP upstream disabled, no option to enable
November 25, 2025, 10:22:29 PM
Related:

https://github.com/opnsense/core/issues/8386

?
#6
25.7, 25.10 Series / Re: Wireguard & LAN-LAN SMB
November 18, 2025, 09:59:07 AM
Just an idea: NAS only allowing access from LAN IPs?
#7
25.7, 25.10 Series / Re: Problem with firewall alies
November 14, 2025, 05:49:31 PM
Set up OPT1 Interface with IP range different from LAN, including DHCP, DNS and outbound NAT.

Create FW rule on LAN to block traffic to OPT1network and vice versa. Done.
#8
German - Deutsch / Re: OPT Port an Powerline
October 26, 2025, 11:38:54 AM
...den Ärger würde ich mir sparen und den wifi AP über einen Switch in's LAN einbinden. Für das freie Interface fällt dir bald was besseres ein. Gästenetz oder IOT oder sonstwas.

Hab einen ähnlichen Aufbau mit Powerlineadaptern und wifi APs und immer wieder Probleme mit Clients im selben (!) LAN, die aus dem wifi nicht erreichbar sind. Die ARP Auflösung funzt dann nicht, die MAC der entsprechenden Clients ist nicht auflösbar. Manchmal geben sich die Problem nach einiger Zeit, manchmal nicht. Powerline ist mit ARP manchmal überfordert.
#9
German - Deutsch / Re: Ändern der kompletten IP-Netze per Config-File
October 17, 2025, 02:15:30 PM
...solange auf keinem Client NTP, DNS oder ähnliches im 10.0.x.x fest gesetzt sind...
#10
General Discussion / Re: Rule Separators
October 15, 2025, 03:49:50 PM
So no replacement for the rule separators? How much can it cost to write these few lines of code to have these colored separators?
#11
General Discussion / Re: Rule Separators
October 15, 2025, 02:56:03 PM
With "Inspect" plus "Tree" plus "Expand/collapse" I see the Automatic rules... But not the rest, even if I check some categoriesmore to the left, same row.
#12
General Discussion / Re: Rule Separators
October 15, 2025, 02:09:38 PM
Hi and thanks for reply!

Actually there is a "Tree" button, but that doesn't do anything. Maybe an artifact of the Palemoon browser, I can't see any logs with that browser, too...
#13
General Discussion / Re: Rule Separators
October 15, 2025, 11:35:30 AM
Has the feature landed in the meantime?
#14
25.7, 25.10 Series / Re: Why is default 7 everywhere?
September 10, 2025, 10:19:04 AM
I had the same question some years ago. No reply.

Why not 42?
#15
German - Deutsch / Re: Probleme auf das Firmennetzwerk zuzugreifen
September 08, 2025, 09:27:24 AM
Hallo,

da würde ich mal den Admin verhören.

Über welche Lösung greifst du denn "auf das Netzwerk" deines Arbeitgebers zu? Windows App?
Pages1 2 3 ... 170